Network detection-based monitoring of electronic merchandise

ABSTRACT

An electronic device configured for retail display includes an antenna, a memory in which security monitoring instructions are stored, and a processor configured to execute the security monitoring instructions to monitor a profile of wireless network communication devices detected via the antenna. The processor is further configured via the execution of the security monitoring instructions to, upon detection of a change in the profile of wireless network communication devices that exceeds a threshold, lock a user interface of the electronic device.

BACKGROUND OF THE DISCLOSURE Field of the Disclosure

The disclosure relates generally to security monitoring of electronic merchandise on display.

Brief Description of Related Technology

Product merchandise is routinely displayed in retail environments with a security mechanism to deter theft. In some cases, the security mechanism is a tether that ties the merchandise to a display fixture. In other cases, the security mechanism is a security device, such as an electronic tag, affixed to the product and configured to support a proximity detection scheme. In either case, the security mechanism attempts to deter theft while providing a consumer an opportunity to evaluate the product. For instance, the security device may allow the consumer to lift or otherwise inspect the product to assess its function and/or aesthetics. Allowing the consumer to lift the product gives the consumer a better opportunity to assess the weight and feel of the product, as well as interact with the various features and other aspects of the product. Despite allowing for such interaction, security devices and other security mechanisms may nonetheless undesirably restrict or inhibit consumer evaluation of the merchandise.

SUMMARY OF THE DISCLOSURE

In accordance with one aspect of the disclosure, an electronic device configured for retail display includes an antenna, a memory in which security monitoring instructions are stored, and a processor configured to execute the security monitoring instructions to monitor a profile of wireless network communication devices detected via the antenna. The processor is further configured via the execution of the security monitoring instructions to, upon detection of a change in the profile of wireless network communication devices that exceeds a threshold, lock a user interface of the electronic device.

In accordance with another aspect of the disclosure, a method of monitoring an electronic device on retail display includes monitoring, by a processor, a profile of wireless network communication devices detected via an antenna of the electronic device, and, upon detecting a change in the profile of wireless network communication devices that exceeds a threshold, locking, by the processor, a user interface of the electronic device.

In accordance with another aspect of the disclosure, a system for retail security monitoring includes an electronic device on retail display, and a plurality of wireless network communication devices, each wireless network communication device of the plurality of wireless network communication devices broadcasting a respective wireless network communication signal. The electronic device includes an antenna, a memory in which security monitoring instructions are stored, and a processor configured to execute the security monitoring instructions to monitor a profile of the plurality of wireless network communication devices detected via the antenna. The processor is further configured via the execution of the security monitoring instructions to, upon detection of a change in the profile of the plurality of wireless network communication devices that exceeds a threshold, lock a user interface of the electronic device.

In connection with any one of the aforementioned aspects, the devices, methods, and systems described herein may alternatively or additionally include any combination of one or more of the following aspects or features. Base profile data for a home base location of the electronic device is stored in the memory. The processor is further configured via the execution of the security monitoring instructions to implement a comparison of data indicative of the profile with the base profile data to detect the change. The processor is further configured via the execution of the security monitoring instructions to implement a scan to capture the base profile data via the antenna upon an unlocking of the electronic device. The processor is further configured via the execution of the security monitoring instructions to periodically capture current profile data for the profile of wireless network communication devices detected via the antenna. The profile includes data indicative of media access control (MAC) addresses of the wireless network communication devices detected via the antenna. The wireless network communication devices include a security-dedicated wireless network communication device. The wireless network communication devices include a network device not connected to an external network. The wireless network communication device not connected to an external network is battery powered. The wireless network communication devices include a wireless router. The wireless network communication devices include a wireless access point. Exit profile data is stored in the memory. The exit profile data is indicative of a wireless network communication device disposed at a location associated with an exit of a retail environment. The processor is further configured via the execution of the security monitoring instructions to compare the profile with the exit profile data and, upon detection of a match between the profile and the exit profile data, lock the user interface of the electronic device. Monitoring the profile of wireless network communication devices includes obtaining, by the processor, base profile data for a home base location of the electronic device, and implementing, by the processor, a comparison of data indicative of the profile with the base profile data to detect the change. The method further includes implementing a scan to capture the base profile data via the antenna upon an unlocking of the electronic device. The wireless network communication devices include a security-dedicated wireless network communication device. The wireless network communication devices include a network device not connected to an external network. Monitoring the profile of wireless network communication devices includes capturing current profile data periodically for the profile of wireless network communication devices detected via the antenna. Monitoring the profile of wireless network communication devices includes comparing the profile with exit profile data indicative of a wireless network communication device disposed at a location associated with an exit of a retail environment, and, upon detection of a match between the profile and the exit profile data, lock the user interface of the electronic device. The profile includes data indicative of media access control (MAC) addresses of the plurality of wireless network communication devices detected via the antenna. The plurality of wireless network communication devices include a network device not connected to an external network. The wireless network communication devices include a security-dedicated wireless network communication device. The security-dedicated wireless network communication device is battery powered.

BRIEF DESCRIPTION OF THE DRAWING FIGURES

For a more complete understanding of the disclosure, reference should be made to the following detailed description and accompanying drawing figures, in which like reference numerals identify like elements in the figures.

FIG. 1 is a block diagram of an electronic device configured for retail display and providing integrated, persistent security monitoring in accordance with one example.

FIG. 2 is a flow diagram of a method of monitoring an electronic device on retail display in which integrated, persistent security monitoring is provided in accordance with one example.

FIG. 3 is a flow diagram of a method of establishing integrated, persistent security monitoring for an electronic device on retail display in accordance with one example.

FIG. 4 is a block diagram of an electronic device configured for retail display while providing integrated security monitoring based on network detection in accordance with one example.

FIG. 5 is a flow diagram of a method of monitoring an electronic device on retail display in which integrated security monitoring based on network detection is provided in accordance with one example.

The disclosed devices, methods, and systems are susceptible of embodiments in various forms. Specific embodiments of the invention are illustrated in the drawing (and will hereafter be described) with the understanding that the disclosure is intended to be illustrative, and is not intended to limit the invention to the specific embodiments described and illustrated herein.

DETAILED DESCRIPTION OF THE DISCLOSURE

Systems, devices and methods for security monitoring merchandise on display are described. The merchandise is or includes an electronic device. The security monitoring methods are implemented by the electronic device itself. The security monitoring is thus provided in a manner integrated with the electronic device on display. The retail environment may consequently not need to rely on tethers, security tags, proximity sensors, or other security mechanisms to deter theft. Alternatively, the integrated security monitoring provided by the disclosed devices and methods may be used in conjunction with such other security mechanisms. Using the device itself to implement the security monitoring avoids having to rely on communications with a remote unit, such as a server computer or other networked computing device. Theft attempts may thus be met with an immediate response, e.g., a bricking or other locking (i.e., benefit denial), thereby deterring the theft attempt, e.g., before the electronic device leaves the retail site.

The disclosed systems, devices and methods may provide persistent security monitoring, avoiding the limitations of other integrated monitoring techniques. Integrated security monitoring presents a technical problem or challenge involving how to continue or sustain the implementation of the security monitoring if a user attempts to disable, shutdown, or otherwise discontinue the security monitoring. For instance, a user attempting to steal the electronic merchandise may close an application providing security monitoring, shutdown the electronic device, or perform a factory reset of the electronic device. The disclosed devices and methods provide a technical solution(s) to this technical problem. In one aspect, the execution of security monitoring instructions is initiated via execution of boot instructions during a boot (e.g., startup) sequence. The boot instructions may be stored on or in a persistent memory (e.g., as firmware) of the electronic device. In another aspect, the security monitoring instructions may be executed within a background service running on a processor of the electronic device, rather than, for instance, as an application running in the foreground or otherwise accessible to the user via a user interface. The background service may be a persistent service, such as an Android Persistent Service (APS).

Other technical problems and challenges presented by integrated security monitoring are addressed by the disclosed devices and methods. For instance, the amount of space available in persistent memory may be limited. The disclosed methods and systems may conserve space in the persistent memory by configuring the boot instructions to initiate security monitoring instructions stored elsewhere on the electronic device. For instance, the security monitoring instructions may be stored on or in a storage device, such as a flash storage device. In some cases, the security monitoring instructions define an agent that implements one or more security monitoring procedures. The boot instructions may cause the agent to be attached to a persistent or other background service without having to store all of the instructions for the agent in persistent memory.

Yet another example of a technical problem or challenge addressed by the disclosed devices and methods involves the temporary nature of the security monitoring. As merchandise for sale, the electronic device will eventually cease to be on display. The security monitoring of the disclosed devices and methods should no longer be implemented once the electronic device is sold or otherwise transferred. The disclosed devices and methods are capable of discontinuing the security monitoring despite the steps taken to establish persistent security monitoring. To that end, the boot instructions are configured to determine whether to initiate the security monitoring. In some cases, the determination includes querying a remote database, a networked device (e.g., a server computer), or other offsite device. Other techniques for obtaining data indicative of whether the security monitoring should be implemented or discontinued may be used, including, for instance, connection of, or other local communication with, a local device. Following the determination that security monitoring should be discontinued, the boot instructions may also provide an operator, such as a store clerk, with an opportunity to download a firmware or other update to the electronic device to remove or otherwise permanently deactivate the boot instructions relating to the security monitoring.

The disclosed systems, devices and methods are not limited to any particular type of electronic merchandise or type of retail environment or site. The integrated nature of the disclosed devices and methods allows the nature of the retail environment to vary considerably. For instance, the retail site may be a kiosk rather than a standalone store with a dedicated entrance or exit. The nature of the electronic merchandise may also vary considerably. While the disclosed systems, devices and systems may be useful in connection with smartphones and other portable electronic devices, the electronic devices may or may not be handheld or portable. For instance, the disclosed systems, devices and methods may be useful in connection with televisions and other large scale devices.

Turning to the drawing figures, FIG. 1 depicts an electronic device 100 configured for retail display. The electronic device 100 may be merchandise for sale and/or part of an exhibit or other display of items for sale. For example, the electronic device 100 may be a smartphone, tablet, or laptop computer. The electronic device 100 may or may not be considered to be or include a computer or computing device. For instance, the electronic device 100 may be a television or monitor. The size, form factor, and other characteristics of the electronic device 100 may thus vary considerably.

The retail display may be in a store or other retail site or environment. The retail display may include one or more fixtures, such as a display stand, base, etc. The retail display and environment may have other security monitoring systems in operation to prevent or deter theft of the electronic device 100 and other merchandise on display. For instance, a wireless security system may be provided, such as the system described in U.S. Patent Publication No. 2016/0307415 (“Apparatus, System and Method for Monitoring a Device within a Zone”), the entire disclosure of which is hereby incorporated by reference. Alternatively or additionally, tethers or other cable-based security measures may be used, including, for instance, cable-based apparatus having a retractable reel and other components for securing merchandise to a display fixture as described in U.S. Patent Publication No. 2014/0059828 (“Apparatus, System and Method for Securing, Attaching and/or Detaching a Device to a Fixture”), the entire disclosure of which is hereby incorporated by reference.

The electronic device 100 is configured to provide security monitoring for itself. Such self-monitoring may replace or augment the security measures established by other items in the retail environment. For instance, the self-monitoring may provide redundancy, which may be useful in circumstances in which a site system fails or is otherwise disabled, or when the cutting of a tether or cable is not detected.

The electronic device 100 includes a processor 102. The processor 102 executes instructions to implement security monitoring methods as described herein. The processor 102 may not be dedicated to implementing security-related tasks. In some cases, the processor 102 may be the primary processor of the electronic device 100. For instance, the processor 102 may be used to perform any number of non-security-related processing tasks or operations for the electronic device 100. In some cases, the processor 102 is or includes a central processing unit (CPU) or other general-purpose processing unit. For example, the processor 102 may be a microprocessor, microcontroller, programmable logic array (PLA), or field programmable gate array (FPGA). Alternatively or additionally, the processor 102 is or includes dedicated or specific processing functionality. For instance, the processor 102 may be or include a graphics processing unit (GPU), a digital signal processor (DSP), or other type of application-specific processor or processing unit. In some cases, the processor 102 is implemented as an application-specific integrated circuit (ASIC). The processor 102 may include one or more processing cores or other units integrated with one another to any extent. The processor 102 may be provided on one or more integrated circuits or integrated circuit (IC) chips. The processor 102 may be integrated with one or more other components of the electronic device 100, such as a memory unit or a communications module. For example, in some cases, the processor 102 is a component of a system-on-a-chip (SoC).

The electronic device 100 includes one or more memory units on which instructions are stored. The instructions configure the processor 102 or other cause the processor 102 to implement tasks or other operations. In the example of FIG. 1, the electronic device includes a random access memory (RAM) or other volatile memory 104 and a persistent memory 106. Both of the memories 104, 106 may be directly addressable and accessible by the processor 102 via, for instance, a memory bus. The persistent memory 106 may be read-only memory (ROM) or other non-volatile memory. Firmware for the electronic device 100 may be stored on the persistent memory 106. Each of the RAM 104 and the persistent memory 106 may include one or more memory units or memories (e.g., memory chips).

In the example of FIG. 1, the electronic device 100 includes one or more user interfaces 108 and one or more communication modules 110. The user interface 108 establishes the manner in which a user interacts or otherwise uses the electronic device 100. For instance, the user interface 108 may include a display, such as a touchscreen. Alternative or additional user interfaces may be provided, including, for instance, a keyboard, speaker, microphone, or other input/output device. The communication module 110 supports communications, such as wireless communications, with remote devices. In some cases, the communication module 110 may include an antenna, a transceiver, and/or other components for supporting the communications. The communications may be in accordance with various communication protocols.

The electronic device 100 also includes a storage device 112. Data stored on the storage device 112 is not directly addressable by the processor 102, in contrast to the memories 104, 106. In the example shown, data on the storage device 112 is copied to the RAM 104 prior to use by the processor 102. The storage device 112 may be or include flash storage in the form of a solid state drive (SSD). Alternatively or additionally, the storage device 112 is or includes a hard disk drive. The storage device 112 may include one or more storage devices. The configuration, construction, storage technology, and other characteristics of the storage device 112 may vary.

Boot instructions 114 are stored on the persistent memory 106. In some cases, the boot instructions 114 are stored as firmware of the electronic device 100. The firmware of the electronic device 100 may thus include the boot instructions 114 in some cases. The processor 102 is configured to execute the boot instructions 114 during a boot sequence of the electronic device 100. The boot sequence may be any startup sequence, including, for instance, a sequence implemented at a power cycle, power-on, factory or other reset, or other restart or startup. In some cases, the boot instructions 114 are implemented as a basic input/output system (BIOS) routine or a portion thereof. In other cases, the boot instructions 114 may be called by a BIOS routine as, for instance, a subroutine. But the boot instructions 114 are not limited to instructions set forth in, or called by, a BIOS routine. For example, the boot instructions 114 may be implemented in connection with a loading of an operating system for the electronic device 114.

Security monitoring functionality is initiated via execution of the boot instructions 114 by the processor 102. The security monitoring functionality is provided via security monitoring instructions 116 stored on the storage device 112. The processor 102 is configured to execute the boot instructions 114 during the boot sequence to initiate execution of the security monitoring instructions 116. For example, the boot instructions 114 may include one or more subroutine or other calls or other references to the security monitoring instructions 116. The security monitoring functionality is thus initiated upon any rest or restart of the electronic device 100.

Initiation of the execution of the security monitoring instructions 116 at reset or startup is accomplished despite storage of the security monitoring instructions 116 outside of the persistent memory 106. The security monitoring instructions 116 may be stored in the storage device 112 alongside applications 118 and user data 120. The applications 118 may be or include applications installed on the electronic device 100. In some cases, the security monitoring instructions 116 may be stored as a standalone application. The user data 120 be or may include data generated by a user during use of the applications 118, including data generated as a result of execution of the security monitoring instructions 116.

The nature of the boot instructions 114 related to the security monitoring functionality may vary. For instance, the manner in which the boot instructions 114 initiates execution of the security monitoring instructions 116 may vary. In some cases, the security-related boot instructions 114 are limited to a callout or other reference to the security monitoring instructions 116. The callout or other reference may be set forth in the boot instructions 114 in the context of establishing a persistent or other background application or service 121 to be executed or implemented by the electronic device 100. Instructions and/or other data associated with the background service 121 may be stored in the RAM 104 for use by the processor 102. The callout or other reference limits the amount of persistent memory consumed by the security-related boot instructions 114.

The callout or other reference may be a generic reference or pointer to an instruction or other data set that establishes a number of persistent applications for execution by the processor 102. For example, the data set may include a listing of a subset of the applications 118 and other instruction sets stored in the storage device 112 to be executed on a background or other persistent basis. The monitoring instructions 116 may then be specified in the listing. The listing or other data set may be modified accordingly. This approach may be useful in connection with electronic devices that have un-modifiable or non-accessible persistent memory. The manufacturer does not provide access to the firmware or other persistent memory 106, but does allow the listing or data set to be customized.

In other cases, the boot instructions 114 set forth instructions beyond a callout or reference to the security monitoring instructions 116 (or a listing of background or persistent applications). For instance, the boot instructions 114 may include instructions directed to determining whether the security monitoring instructions 116 should be called or otherwise initiated. As described further below, the boot instructions 114 may configure the processor 102 to obtain retail data indicative of either the electronic device 100 or the retail display, and to processor the retail data to determine whether to initiate the execution of the security monitoring instructions 116. The retail data may be, for instance, a device identification number 122 accessed from, in the example of FIG. 1, the persistent memory 106. The device identification number 122 may be a serial number or any other data indicative of an identity of the electronic device 100. Other types of retail data may be used, including, for instance, a store identification number or a display fixture identification number. The manner in which the retail data is stored and obtained may vary accordingly.

Processing of the retail data by the boot instructions 114 may include sending a query to determine whether the electronic device 100 (e.g., this particular instance of the electronic device 100) should be subjected to security monitoring. Execution of the boot instructions 114 causes the processor 102 to send a query with identification data indicative of an identity of the electronic device 102 to determine whether to initiate the execution of the security monitoring instructions. In the example of FIG. 1, the query is sent via the internet 124 to a remote database 126 hosted by a server computer 128. Network communications with the server computer 128 may be supported by an antenna 130 of the electronic device 100. The database 126 may include a list, table or other dataset identifying electronic devices currently subjected to security monitoring. To allow the device to be sold, the device identification number is removed from the database. Other networked and non-networked devices may be used to store the remote database 126.

The determination may be made in other ways. For instance, the electronic device 100 may include one or more data communication ports 132 (e.g., a universal serial bus, or USB, port) or sensors (e.g., a camera) to capture or otherwise obtain the retail data. For example, a retail store employee may insert a USB dongle into the input port 132 or hold up a symbol (e.g., a quick response (QR) code to the camera during device startup. The USB dongle or QR code symbol may be used to initiate the security monitoring for that restart and all subsequent restarts until data from the same or a different USB dongle, symbol, or other item is captured during startup. The nature of the retail data may thus vary considerably.

The boot instructions 114 may set forth other instructions in alternative or addition to a callout or reference to the security monitoring instructions 116, or a routine directed to determining whether to initiate the security monitoring instructions 116. For example, the boot instructions 114 may establish a persistent service or application for implementation by the processor 102 throughout operation of the electronic device 100. In Android cases, the persistent service may be an Android Persistent Service (APS). Execution of the boot instructions 114 may cause the processor 102 to attach an agent defined via the security monitoring instructions 116 to a persistent service running on the processor 102. The persistent service may provide various security-related functionality via attachment of the agent of the security monitoring instructions 116. In some cases, the boot instructions 114 may attach the agent to the persistent service upon determining that security monitoring should be initiated. The manner in which the agent is attached to the persistent service may vary. For instance, attachment of the agent may include or involve association, incorporation with, activation of, instructions defining the agent with or into the instructions of the persistent service. Further details regarding examples of these and other aspects of, or involving, the agent are set forth in U.S. Patent Publications 2006/0272020 (“Persistent servicing agent”), 2013/0219041 (“Extensible protocol for low memory agent”), and 2014/0298485 (“Persistent agent supported by processor”), the entire disclosures of which are hereby incorporated by reference.

The processor 102 is configured, via the execution of the security monitoring instructions 116, to monitor the retail display of the electronic device 100 for a security trigger event. The monitoring for the security trigger event may use one or more components of the electronic device 100. For example, the electronic device 100 may include an accelerometer or other sensor configured to detect and characterize movement. One or more antennas or other electromagnetic circuitry of the electronic device 100 may be used to detect or determine distances. The monitoring may also involve detecting a disconnection at one or more ports or interfaces of the electronic device 100, such as the ports 130, 132, and a power port 134. Examples of trigger events involving such sensors and circuitry include removing the electronic device 100 from a proximity zone, moving the electronic device 100 is in a manner indicative of theft, or one or more disconnections of the electronic device 100, such as disconnection form a power source. Still other types of trigger events may alternatively or additionally be used, including, for instance, network detection-based trigger events as described below in connection with the examples depicted in FIGS. 4 and 5.

The monitoring for a trigger event may also involve communications or other interaction with another device. For example, the electronic device 100 may receive a signal or message from an alarm unit or other security system component indicative of an alarm condition within the retail store. An attempted theft of other merchandise in the retail environment may thus lock down other merchandise on display.

The trigger event may involve the operation of the electronic device 100 itself. For instance, the processor 102 may be configured via execution of the monitoring instructions 116 to consider various user actions as a trigger event. Examples include (i) an attempt to delete or disable an application, firmware, or other monitoring instructions, (ii) discontinue a monitoring service, (iii) detach an agent of the monitoring service, or (iv) power-off the electronic device 100. Other types of trigger events may be used.

Upon detection of the trigger event, the execution of the security monitoring instructions 116 causes the processor to lock the user interface(s) 108 of the electronic device 100. For instance, a touchscreen or other display may display a warning message regarding a locking of the electronic device 100 until the trigger event ends. The warning message may continue to be displayed until the trigger event is no longer present.

The nature of the locking may vary with the type of trigger event. In some cases, the security monitoring instructions 116 define multiple levels of locking. For instance, a major or primary trigger event may cause the security monitoring instructions 116 to configure the processor 102, upon the detection of the trigger event, to generate an alarm that cannot be deactivated by merely discontinuing the trigger event. Unlocking the electronic device 100 may need to involve a key, code, or other disarming mechanism. In contrast, some trigger events may be sufficiently minor or secondary that removal of the trigger event automatically unlocks the electronic device 100.

Whether primary or secondary, the trigger events may be defined by the security monitoring instructions 116 such that the user interface 108 is locked before removal of the electronic device 100 from the retail site. Such immediacy of the locking may help to deter and/or prevent theft. The nature, extent, duration, unlocking and/or other characteristics of the lock may vary considerably.

The trigger event and locking may not involve a theft attempt. For instance, the security monitoring instructions 116 may be directed to preserving a display state of the electronic device 100. In some cases, the trigger event may involve a user attempt to sign in/out of an application or service. Signing out of a service may load personal data or otherwise personalize the electronic device 100 in a manner inappropriate for a retail environment. The monitoring instructions 116 may detect an attempt at signing out of a user account directed to retail display. The locking may thus inhibit the customization of the electronic device 100. The monitoring instructions 116 may alternatively or additionally alert a store employee of the need to wipe or clear user data from the electronic device 100. In some cases, the monitoring instructions 116 configure the processor 102 to prompt the store employee, e.g., after an unlocking, to initiate a device wipe or other housekeeping.

FIG. 2 is a flow diagram of a method 200 of monitoring an electronic device on retail display. The method 200 is implemented by the electronic device itself. For instance, the method 200 may be implemented by the processor 102 of the electronic device 100 described above in connection with FIG. 1. The characteristics of the processor and electronic device may vary from the examples described above.

The acts of the method 200 may be implemented in accordance with the above-described boot instructions and/or the security monitoring instructions. Any combination of the instructions may be used. Some or all of the method 200 may be implemented in accordance with solely the boot instructions or solely the security monitoring instructions. The instructions may be stored in persistent memory and non-volatile storage as described above.

One or more acts of the method 200 may be implemented within a persistent or background service running on the processor. For instance, the acts implemented in accordance with the security monitoring instructions may be executed within the persistent or background service. Acts not implemented within a persistent or background service may be implemented in connection with a boot procedure. For instance, one or more acts directed to initiating the persistent or background service may be implemented during and via the boot procedure.

The method 200 may begin with one or more acts directed to booting up the electronic device. For instance, the acts may be implementing an activation, startup, or restart (or reboot) of the electronic device. Any number of startup-related acts may be performed before security-related instructions are implemented.

The method 200 includes an act 202 in which boot instructions are executed to initiate, in turn, execution of security monitoring instructions. The boot instructions are stored in a persistent memory of the electronic device as described above. The nature of the boot instructions may vary. For instance, the boot instructions may include a general or specific callout or other reference to a routine(s) or other instructions that either directly or indirectly results in the execution of the monitoring instructions. Alternatively or additionally, the boot instructions may include instructions in addition to a callout or other reference to implement security-related tasks, such as one or more tasks related to determining whether to initiate the security monitoring.

The execution of the monitoring instructions leads to an act 204 in which status data indicative of a status of the retail display is obtained in accordance with the security monitoring instructions. The nature of the status data may vary as described above. For instance, the status data may be indicative of a position or other condition or characteristic of the electronic device, a condition of the retail display, or a message or communication relating to the retail display or retail environment, such as an alarm message.

In act 206, the status data is analyzed in accordance with the security monitoring instructions to monitor the status of the retail display for a security trigger event. The analysis may vary in accordance with the nature of the status data. For instance, the analysis may include or involve a data evaluation or other data processing, e.g., to determine whether the electronic device is within a zone. Alternatively or additionally, the analysis may involve evaluation of a data transmission.

If a trigger event is detected, one or more user interfaces of the electronic device are locked in an act 208. The user interface may be a touchscreen of the electronic device. The locking may inhibit some or all of the input/output functions of the user interface(s). For instance, the locking may not allow any data input in some cases. In other cases, the touchscreen may present a data entry field to allow an unlock code to be provided.

The act 208 may be implemented in a timely fashion. For instance, the locking of the user interface of the electronic device may be implemented before removal of the electronic device from the retail site in which the retail display is provided. The display of a message via the touchscreen and/or other user interface may provide an alert that dissuades any further movement or actions. Upon seeing the message, a prospective thief may no longer attempt to steal the electronic device. The message may also help a prospective consumer that inadvertently causes a trigger event avoid triggering a higher level alarm.

As described above, the locking of the act 208 may vary in accordance with the trigger event. Different types of trigger events may cause different levels or types of locking. In some cases, the act 208 includes actions or operations in addition to the locking. For instance, the electronic device may capture images via a camera, send alert and other messages to an alarm unit and/or law enforcement, and otherwise capture and/or generate data in connection with the trigger event.

In some cases, the act 208 includes implementation of a data wiping procedure. The data wiping procedure may remove user data from the electronic device and/or return the electronic device to factory settings and/or another state (e.g., a retail display state). The data wiping procedure may be implemented in connection with, or separately from, a locking. The data wiping procedure may be implemented at other points during the method.

In act 210, the electronic device is unlocked. The steps taken to unlock the electronic device may vary. In some cases, removal of the trigger event is sufficient to unlock the electronic device. A higher level of locking may necessitate the performance of one or more additional steps to unlock the electronic device, including, for instance, the provision of an unlock code.

Initiating the execution of the monitoring instruction in the act 212 may include one or more acts directed to determining whether and how to execute the monitoring instructions. For instance, in an act 212, retail data is captured or otherwise obtained. The retail data may be indicative of the identity of the electronic device (e.g., device identification data), the identity or other characteristic of the retail site (e.g., store identification data), and/or the identity or other characteristic of the retail environment (e.g., display fixture data). The retail data may then be processed in an act 214 to determine whether security monitoring should be initiated. The processing may involve checking a remote database or other communication or analysis. In the event that the security monitoring is deemed to be appropriate for the particular electronic device, display site, and/or display fixture, then the monitoring instructions are executed. In some cases, a persistent or background service is created in an act 216 within which the monitoring instructions are executed.

The status data obtained in the act 204 may be captured or received in various ways. In some cases, the status data is captured in an act 218 via an input/output port and/or a sensor of the electronic device. For example, an accelerometer may detect movement indicative of a theft attempt. Alternatively or additionally, an antenna may detect a change in a signal. Other signals may be detected or not detected to obtain the status. For instance, proximity data be received or otherwise used by the electronic device in an act 220. Other types of data may also be received by the device as status data. For instance, in an act 222, the device receives one or more instructions, such as a message from an alarm unit regarding an alarm or other status condition.

The analysis of the status data in the act 206 may vary in accordance with the nature of the status data and/or the type of trigger events to be detected. For example, the status data may be evaluated or processed to an extent to determine whether the status data is indicative of a trigger event. Alternatively or additionally, the analysis includes or involves demodulation and/or other processing of a signal indicative of instructions or other messages. In these and other ways, one or more types or levels of trigger events may be detected. In the example of FIG. 2, the analysis may lead to the detection of a primary trigger event in an act 224, and a secondary trigger event in an act 226. In some cases, the analysis of the status data may be detect an improper or unauthorized logout, login, or shutdown attempt in an act 228. These attempts may or may not be associated with an attempt to thwart the security monitoring. For instance, the attempt may be an attempt to change the user profile from a generic retail profile to a specific user profile.

The locking of the device in the act 208 may include or involve generating a warning in an act 230. In some cases, the warning is generated on a display of the electronic device. The warning may display a message regarding a locking of the electronic device until the trigger event ends. Alternatively or additionally, a report regarding the trigger event may be generated and sent in an act 232. For example, a message may be sent to an alarm unit, store employee, or other system operator or component. The report or other message may relay details regarding the trigger event, such as the details of a logout attempt. In some cases (e.g., with a primary trigger event), the act 208 includes or results in the generation of an alarm that cannot be deactivated by discontinuing the trigger event. For instance, an attempt to discontinue the alarm, warning, or other device lock by shutting down the device (e.g., powering off the device) would result in the device remaining in the locked state once the device is powered back on. Knowing that the device will remain locked, a prospective thief will be deterred from stealing the device.

The unlocking of the device in the act 210 may vary based on the nature of the trigger event and/or the level of the locking. In some cases, the device is unlocked in an act 236 upon the detection of the removal of the trigger event. In other cases, a release code or key is received in an act 238 to unlock the device. The manner in which the device is unlocked may vary as described above.

The order of the acts of the above-described method 200 may differ from the example shown in FIG. 2. For instance, status data may be received concurrently with the initiation of the execution of the monitoring instructions. Status data may also be received concurrently with the analysis of other, previously received status data.

FIG. 3 depicts a method 300 of establishing security monitoring for an electronic device on retail display. The method 300 is implemented by the electronic device itself. For instance, the method 300 may be implemented by the processor 102 of the electronic device 100 described above in connection with FIG. 1. The characteristics of the processor and electronic device may vary from the examples described above.

The acts of the method 300 may be implemented in accordance with the above-described boot instructions as described above. In other cases, the acts of the method 300 are implemented in accordance with other instructions stored in a persistent memory of the electronic device.

One or more acts of the method 300 may be implemented as part of a startup or other boot procedure. In the example shown, the method 300 begins with initiation of a boot procedure in an act 302. Alternatively, the method 300 may begin after one or more acts directed to booting up the electronic device. For instance, multiple acts directed to an activation, startup, or restart (or reboot) of the electronic device may have been previously implemented. Any number of startup-related acts may be performed before acts of the method 300 are implemented.

The method 300 includes an act 304 in which retail data is obtained. The retail data is indicative of either the electronic device or the retail display. In the former case, the retail data may be or include device identification data, such as a serial number. In the latter case, the retail data may be or include retail site identification data. Other types of retail data may be used. For example, the retail data may be or include data indicative of a retail fixture within the retail site.

In an act 306, the retail data is processed. The retail data is processed to determine whether to initiate execution of the security monitoring instructions. For example, in cases in which the retail data is indicative of the identity of the device (e.g., a device serial number), the processing of the retail data may determine whether the instance of the specific device is one for which security monitoring is desired.

Execution of the monitoring instructions is initiated in an act 308 in accordance with results of processing the retail data, e.g., if the processing reveals that security monitoring is appropriate. For example, the boot instructions may cause the processor to implement a callout or other reference to the monitoring instructions that passes control thereto.

In the example of FIG. 3, the acts 304, 306 and 308 are implemented via execution of instructions stored on or in a persistent memory of the electronic device. In other cases, one or more of the acts are implemented via execution of instructions stored elsewhere, such as on or in a storage device.

The manner in which the retail data is obtained in the act 304 may vary, e.g., in accordance with the nature or type of the retail data. For instance, in some cases, the retail data is obtained by accessing the persistent memory of the electronic device in an act 310. In such cases, the retail data may be or include a device identification number, such as a serial number. Alternatively or additionally, the retail data is captured via a sensor or other component (e.g., an input port) of the electronic device in an act 312. For example, a camera of the electronic device may capture an image of a QR or other code indicative of a device identification number or other identification data, such as a retail site number or display fixture number. Other sensors or components may be used, including, for instance, a near-field communications (NFC) antenna. In still other cases, the retail data is obtained in an act 314 via receipt of instructions from, e.g., an alarm system.

The processing of the retail data in the act 306 may include or involve an evaluation of the retail data in an act 316. For example, a device identification number may be evaluated to determine whether the particular instance of the electronic device should be monitored. In some cases, the evaluation or other processing includes or involves sending a database or other query in an act 318. The query may seek to determine whether the device identification number is listed in a database of currently monitored devices. A system response message or other instructions may then be received in an act 320. The system instructions may differ in non-database examples.

When the monitoring instructions are to be executed, the act 308 may include creation of a persistent or other background service in an act 322. Alternatively or additionally, an agent of the monitoring instructions is attached to a persistent or background service in an act 324. The persistent or background service is or will be running on the processor of the electronic device. In some cases, the agent is defined via the security monitoring instructions. Other acts may be implemented in accordance with the nature or content of the boot instructions.

The order of the acts of the method 300 may differ from the example shown in FIG. 3. For instance, the product identification data may be obtained before or concurrently with the sensor identification data.

The above-described methods may include additional, fewer, or alternative acts. For instance, the method 200 and/or the method 300 may include one or more additional acts directed to data wiping and/or other housekeeping of the electronic device.

Described above are devices and methods for providing security monitoring and benefit denial of electronic merchandise. In some aspects, the methods include or involve monitoring the electronic device for a trigger event, and locking, upon detection of the trigger event, the electronic device. In other aspects, the devices include a memory configured to store firmware instructions that, when executed, configure a processor of the electronic device to provide security monitoring and benefit denial. The processor may be configured to monitor, via the firmware instructions, the electronic device for a trigger event, and lock, with the firmware upon detection of the trigger event, the electronic device. Aspects of the method may be performed via a background application or other service running on the processor. The methods and devices may provide the security monitoring in connection with a security system configured to generate an alarm upon detection of the trigger event. Ins some cases, the alarm is generated prior to locking the device as a result of, for instance, an attempted theft of other merchandise on display.

The nature of the alarms or benefit denial may vary as described above. One or more alarms and/or benefit denials may be activated based on one or more triggers. Any trigger detectable by the software solution may be used.

The software solution may trigger the alarm and/or benefit denial based on losing connection to an external power source. For example, in a low security environment (e.g., a corporate or educational environment) where the device may not be physically secured to the location, the device may be plugged into external power. Therefore, unplugging the device from a power source may trigger an alarm or the benefit denial. Further, the software solution may only trigger an alarm and may not include benefit denial (e.g., in a low security environment).

The software solution may use loss of data integrity as a trigger. For example, using the external USB or other port on the device, the software solution may communicate with an external USB “dongle,” such as a solid-state memory stick or other custom USB device attached to the device. Integrity of the USB port may be determined and used as a trigger. The software solution may monitor the USB data connection (e.g., data activity) and may trigger based on losing the connection. The software may also read and/or write a specific data “key” or other data to a USB solid state memory. Further, the software solution may read and validate periodic “pings” from the USB device.

The software solution may use specific motion as a trigger. For example, the device may include an accelerometer to detect movement of the device. Using information gathered from the device, the software solution may detect mechanical shock or other movements to be used as triggers. For example, a mechanical shock might indicate that the device is being forcibly removed from a display or other security product, or may have been dropped or damaged. Further, the software solution may detect that the device is being picked up and moved (e.g., a user walking or running with the device). The software solution may also trigger on being removed from a display or fixed location, such as if the device is removed from a location for longer than a threshold (e.g., long dwell times).

The software solution may also access a near field communication (NFC) or radiofrequency identification (RFID) reader on the device (e.g., in a mobile handset). The software solution may read and/or write to external NFC tags and/or other NFC-enabled devices monitor the device location, identification, etc. The software solution may also read and/or monitor connection with RFID-enabled tags and/or other device. For example, low-frequency (LF), high-frequency (HF), ultra-high-frequency (UHF), or other RFID technology may be used. The software solution may also access other functionality of the device (e.g., wi-fi, mobile, Bluetooth, etc.) to monitor the device and trigger the alarms and/or benefit denial. For example the software solution may be triggered if the device can no longer communicate with a networking device, such as a router, hub, main alarm, etc. In some cases, a Wi-Fi, Bluetooth, or other communication channel is configured to be invisible or inaccessible to unapproved users. For example, a communication channel used for triggering is not directly visible or accessible to the general public (e.g., users who are shopping for or using the products in the retail environment). By making the communication channel invisible inaccessible, the communication channel and/or the security solution is more difficult to disable and/or modify (e.g., settings, passwords, etc.). Further, use of the communication channel may be limited (e.g., preventing users from using the network and/or from incurring data charges).

The benefit denial may be removed manually and/or automatically. For example, in some cases, the device may be unlocked automatically if one or more of the triggers are no longer present. User intervention may also be used (e.g., needed) to unlock the device. In other cases, for example, if one or more of the triggers are no longer present, a PIN, key or other security information may be used (e.g., needed) to unlock the device. Other manual intervention may be used.

The disclosed devices and methods may also provide local and remote instant status, alerts and alarms. For example, instant visual and audible notifications and alarms may be displayed on the device display and through the device speaker(s). For example, device status may include a physical position, an “armed” setting, a device in motion alert, etc. Any status may be provided based on the capabilities of the device. E-mail and text notifications and other alerts may be provided based on the device status.

The disclosed devices and methods may also capture interactive data from the device. For example, the disclosed devices and methods may log user interactions and usage on the device, such as device lift and place events and dwell times. The disclosed devices and methods may also log electronic interactions with the device, such as communication events with other devices. The interactive data may be captured and stored as timestamps in a database. The disclosed devices and methods may be configured to provide analytics for the device based on the data. The data and/or analytics may be uploaded to a local or remote (e.g., cloud-based) server. The uploaded data may be used by the server or other device to provide analytics on the device.

The disclosed devices and methods may also provide for preventative maintenance and remote monitoring. For example, when a device is used by a large number of users, such as when displayed for sale or used in multi-user environment, the disclosed devices and methods may be used to perform maintenance and “housekeeping” for the device. Using the software solution, installed applications, pictures, browsing histories, etc. may be deleted from the device. The “housekeeping” may be performed manually or automatically, such as periodically (e.g., once per day or other periodic rate specified) to automatically search and clean the devices of unwanted clutter. The software solution may also factory reset the device remotely. Additionally, configuration of the firmware or software application may be performed remotely (e.g., “over-the-air” configurability from a remote connection).

The nature of the trigger events may vary. As described above, examples of trigger events include disconnection from an external power source, loss of data integrity, movement of the device, and loss of communication. The disclosed devices and methods may monitor for alternative or additional types of trigger events, including network detection-based trigger events. In such cases, and as described below in connection with FIGS. 4 and 5, the electronic device may be locked upon detecting a change in the wireless communication networks, or wireless network communication devices broadcasting such networks, visible to, or detected by, the electronic device. The locking and unlocking in connection with any combination of these and/or other trigger events may progress, be prioritized or otherwise layered in various ways.

FIG. 4 depicts a system 400 for retail security monitoring based on monitoring wireless communication network visibility or detectability in accordance with one example. The system 400 includes an electronic device 402 on retail display. The system 400 is configured to protect the electronic device 402 from theft via detection of a trigger event related to the wireless communication network detectability. The system 400 may be configured in a manner similar to the examples described above in one or more ways. For instance, the system 400 and/or the electronic device 402 may be configured to monitor one or more other aspects of the retail environment for one or more other trigger events.

The electronic device 402 may be similar to the examples described above in several ways. For instance, the electronic device 402 includes a processor 404 and a memory 406 on or in which security monitoring instructions are stored. The processor 404 and the memory 406 may be configured as described above. The persistence of the security monitoring functionality may be supported or established as described above.

The electronic device 402 may also include a communication module as described above. In this example, the communication-related components of the electronic device 402 include a network communication chip (or chipset) 408 (“network chip”) and an antenna 410 in communication with the networking chip 408. The network chip 408 may be directed to establishing Wi-Fi communications in accordance with one or more of the IEEE 802.11 standards. Additional or alternative network communication protocols or standards may be supported. The network chip 408 may include any number of chips or other circuit components, such as components directed to processing (e.g., a microprocessor), memory (e.g., random access memory), transceiver functionality (e.g., a transmit/receive switch, power amplifier, matching, etc.). The extent to which such components are integrated may vary to any desired extent.

The antenna 408 may include one or more antenna elements. For instance, the antenna 408 may include one antenna element for communications within or over one frequency range, and another antenna element for communications within or over another frequency range. A variety of different network communications may thus be supported.

The system 400 includes a plurality of wireless network communication devices 412-415. Each wireless network communication device 412-415 broadcasts a respective wireless network communication signal. For instance, the wireless network communication signals may be or include Wi-Fi signals. Any one or more of the IEEE 802.11 standards may be used. Additional and/or alternative types of wireless network communication signals may be broadcast. For example, other types of wireless local area network (WLAN) signals may be broadcast, including, for example, spread spectrum signals. The wireless network communication devices 412-415 may be configured for operation in infrastructure or peer-to-peer (or ad hoc) mode.

Each wireless network communication device 412-415 may be or otherwise include a wireless router, a wireless access point, or other network base station. Multiple devices of the wireless network communication devices 412-415 may support the same network. For example, the wireless network communication device 412 may be or otherwise include a wireless router that broadcasts a wireless network communication signal for a network named “PHONE_DISPLAY_AREA.” The wireless network communication device 413 may be or otherwise include an access point that also broadcasts a wireless network communication signal for the network named “PHONE_DISPLAY_AREA,” thereby extending the range of the network. The other wireless network communication devices 414, 415 may be similarly configured to broadcast wireless network communication signals for another network named “TABLET_DISPLAY_AREA.” Thus, multiple devices of the wireless network communication devices 412-415 may be associated with the same service set identifier (SSID). The number of wireless communication networks may accordingly vary. Any number of wireless network communication devices 412-415 may be included.

The wireless network communication devices 412-415 may or may not be associated with the retail environment in which the electronic device 402 is displayed. In some cases, all of the wireless network communication devices 412-415 are associated with the retail store or other environment. In other cases, any number of the wireless network communication devices 412-415 are associated with a nearby business or other entity. In either case, the location and other characteristics of the wireless network communication devices 412-415 may generally remain over time. For example, the routers or access points in a retail environment or nearby business may be installed as fixtures or otherwise remain stationary. The corresponding broadcasts of the respective wireless network communication signals may also remain consistent over time. The signal strengths of the wireless network communication signals at various positions in the retail environment may thus be unique and consistent. In this way, changes the detectability of the wireless network communication signals may be indicative of movement of the electronic device 100. The detectability of the wireless network communication signals may thus be used as a trigger event for an unauthorized removal of the electronic device 402 from the retail display.

One or more of the wireless network communication devices 412-415 may not be connected to an external network 418, such as the Internet. In the example of FIG. 4, only the wireless network communication devices 413, 414 are connected to the external network 418. The wireless network communication devices 413, 414 may thus be in actual use for data communications to and from the external network 418. In contrast, the other two wireless network communication devices 412, 416 are not connected to the external network 418. The wireless network communication devices 412, 416 may accordingly be considered to be offline. However, each of the offline wireless network communication devices 412, 416 broadcasts a respective wireless network communication signal despite not providing data communications to and from the external network 418. The offline or disconnected wireless network communication devices may be useful in retail environments in which an insufficient number of wireless network communication devices are present. The offline or disconnected wireless network communication devices may thus be provided as dummy, or mock, devices directed or dedicated to security purposes, rather than communications. Such offline or disconnected wireless network communication devices may be referred to herein as “security-dedicated wireless network communication devices.”

In some cases, the security-dedicated wireless network communication devices may be battery powered. For example, each security-dedicated wireless network communication device may be equipped or otherwise configured with, or otherwise include, one or more lithium batteries. The battery (or batteries) may be configured for long-term power supply. Battery powered operation may be useful for strategic placement or deployment of the security-dedicated wireless network communication devices throughout the retail environment. For instance, the security-dedicated wireless network communication devices may be disposed in locations that are inconvenient for wired power delivery, but nevertheless useful for security purposes. Battery powered operation may be useful for facilitating implementation or deployment of the disclosed methods and systems, e.g., without forcing a retailer to modify the installations of its active wireless network communication devices.

The wireless network communication signals may include data representative of a name or other identifier of the network and/or network device. For example, in Wi-Fi cases, the wireless network communication signals include data representative of a network identification, such as an SSID, and a device identification, such as a media access control (MAC) address. Alternative or additional identifiers or other data may be included.

The processor 404 of the electronic device 402 is configured to execute the security monitoring instructions to monitor a profile of the wireless network communication devices 412-415 detected via the antenna 410. The profile may be indicative of a list of the SSIDs or other identifiers of the networks detected by the electronic device 402. The list may include data indicative of the identifiers of the corresponding wireless network communication devices, such as the media access control (MAC) address of each wireless network communication device. The profile may also include further data, such as data indicative of signal strengths for the wireless network communication devices 412-415 detected by the electronic device 402.

The processor 404 of the electronic device 402 is configured via the execution of the security monitoring instructions to, upon detection of a change in the profile of the wireless network communication devices 412-415 that exceeds one or more thresholds, lock a user interface of the electronic device 402. The locking of the user interface may be configured or proceed as described above with the other trigger events. For instance, the locking may include an alarm or alert.

The change may be relative to a base or reference profile. Base profile data for a home base location of the electronic device 402 may be stored in the memory 406. The processor 404 may thus be further configured via the execution of the security monitoring instructions to implement a comparison to detect the change. Data indicative of the profile may be compared with the base profile data for the home base location. The home base location may be or include a display stand or other fixture for displaying the electronic device 402. Alternatively or additionally, the home base location may be a display area, such as a respective area of a retail store. The strength and availability of wireless network communication signals at the home base location remain substantially constant as long as the wireless network communication devices 412-415 are stationary. A change in the profile is therefore indicative of movement of the electronic device 402 away from the home base location.

The base profile data may be established by the electronic device 402. For instance, the processor 404 may direct the network chip 408 to implement a scan to capture the base profile data via the antenna upon entry of a passcode via the user interface or other unlocking of the electronic device 402 (e.g., an automatic unlocking of the electronic device 402 as a result of a power re-connection). The update to the base profile data may happen automatically upon completion of the scan. Updates to the base profile data may occur in alternative or additional ways, including, for example, via receipt of an instruction from a server or other security system computer.

The detection of a change in profile may not involve base profile data. For instance, a change in profile may be detected more dynamically, including, for instance, one or more comparisons with preceding profile measurements. For example, a change in profile may be detected by determining a rate of change for one or more wireless network communication devices 412-415.

One or more thresholds may be used to avoid triggering a locking based on insignificant changes to the profile. False positives, such as a temporary discontinuation in signal broadcasting by one of the wireless network communication devices 412-415, may thus be avoided. The threshold may involve or include any parameter (or parameters) indicative of the profile of wireless network communication devices 412-415. For instance, the threshold may establish that the inability to detect more than half of the networks (or network devices) in the base profile constitutes a change in the profile. Alternatively or additionally, the threshold may establish that a decrease in signal strength of over 70% for a predetermined number or percentage of networks (or network devices) constitutes a change in the profile. The parameter may be a composite or calculated parameter indicative of a combination of other parameters. For instance, a score may be calculated in accordance with any number of parameters, including the presence of each network (or network device), the signal strength of each network (or network device), the order of the networks by signal strength, etc. The threshold may then be a quantity for comparison with the score. For instance, a score exceeding the threshold is thus deemed to be indicative of a change in the profile.

The electronic device 402 may monitor the wireless network communication devices 412-415 for changes continuously or discontinuously. For example, the electronic device 402 may scan for the wireless network communication devices 412-415 at predetermined intervals, or after a predetermined amount of time since the last scan. Alternatively or additionally, the electronic device 402 may scan for, or otherwise monitor the profile of, the wireless network communication devices 412-415 upon the detection of a predetermined occurrence. For instance, in the example of FIG. 4, the electronic device 402 includes an accelerometer 420. The accelerator 420 may provide a report to the processor 404 upon detection of movement of the electronic device 402. The processor 404 may then be further configured via the execution of the security monitoring instructions to capture the current profile data for the profile upon detection of movement by the accelerometer 420. Alternative or additional occurrences may be used, including, for instance, detecting a disconnection or an actuation (e.g., a button press) of the electronic device 402. The frequency of the scans or other monitoring may also be modified upon the detection of such or other occurrences.

Other types of profile comparisons or changes may be used to trigger the locking of the user interface. For example, exit profile data may be stored in the memory 406. The exit profile data is indicative of a wireless network communication device disposed at a location associated with an exit of the retail environment. For instance, a dummy or other access point may be positioned above a door or other entryway of a retail store. In such cases, the processor 404 is further configured via the execution of the security monitoring instructions to compare the profile with the exit profile data and, upon detection of a match between the profile and the exit profile data, lock the user interface of the electronic device 402. In the example involving an access point above a door, the detection of the access point may be used to indicate that the electronic device 402 is passing through, or otherwise too close to, the door, thereby warranting a locking. The detection of the match may be combined with one or more thresholds, such as a threshold signal strength and/or an ordering in which the exit device is found to have one of the top (e.g., top three) strongest signals.

FIG. 5 is a flow diagram of a method 500 of monitoring an electronic device on retail display. The method 500 is implemented by the electronic device itself. For instance, the method 500 may be implemented by the processor 404 of the electronic device 402 described above in connection with FIG. 4. The characteristics of the processor and electronic device may vary from the examples described above.

The acts of the method 500 may be implemented in accordance with the above-described security monitoring instructions. The instructions may be stored in any type of memory as described above. One or more acts of the method 500 may be implemented within a persistent or background service running on the processor, as described above.

The method 500 may begin with one or more acts directed to booting up the electronic device. For instance, the acts may be implementing an activation, startup, or restart (or reboot) of the electronic device. Any number of startup-related acts may be performed before security-related instructions are implemented.

The method 500 includes an act 502 in which boot instructions are executed to initiate, in turn, execution of security monitoring instructions. The boot instructions may be stored in a persistent memory of the electronic device as described above. The nature of the boot instructions may vary. For instance, the boot instructions may include a general or specific callout or other reference to a routine(s) or other instructions that either directly or indirectly results in the execution of the monitoring instructions. Alternatively or additionally, the boot instructions may include instructions in addition to a callout or other reference to implement security-related tasks, such as one or more tasks related to determining whether to initiate the security monitoring.

The execution of the monitoring instructions leads to an act 504 in which a profile of wireless network communication devices detected via an antenna of the electronic device is monitored. The monitoring of the act 504 may include a number of subsidiary acts directed to obtaining and analyzing the current profile. In the example of FIG. 5, the act 504 includes obtaining (e.g., saving and accessing) base profile data for a home base location of the electronic device in an act 506. The act 506, in turn, may include activating a network chip in an act 508, and implementing scanning for networks using the network chip in an act 510. Current profile data for the profile of wireless network communication devices is obtained in an act 512. The current profile data may be captured periodically (act 514), upon motion detection (act 516), and/or upon receipt of an instruction to scan (act 518). Once the current profile data is obtained, one or more comparisons are implemented in an act 520 to detect the change. In an act 522, a comparison of the current profile data with the base profile data is implemented to detect the change. Alternatively or additionally, the current profile data is compared in an act 524 with exit profile data as described above to lock the user interface upon the detection of a match.

Upon detecting a change in the profile that exceeds one or more thresholds, the user interface of the electronic device is locked in an act 526. The locking may inhibit some or all of the input/output functions of the user interface, as described above. The locking of the device in the act 526 may include or involve generating a warning, as described above.

In act 528, the electronic device may be unlocked. The steps taken to unlock the electronic device may vary. In some cases, the detection of the base or reference profile in an act 530 unlocks the electronic device. Alternatively or additionally, a release code or key is received in an act 532 to unlock the device. The manner in which the device is unlocked may vary as described above.

The order of the acts of the above-described method 500 may differ from the example shown in FIG. 5. For instance, one or more comparison may be implemented concurrently with the capturing of further profile data. Profile data may also be received concurrently with the analysis of other, previously received profile data.

In one example of the above-described methods and devices, the base profile includes up to five wireless network communication devices. The MAC addresses and signal strengths of the wireless network communication devices having the greatest signal strength are recorded or otherwise saved as the base profile data. Any number of wireless network communication devices may be included in the base profile data. During monitoring, the threshold for determining whether to lock the electronic device involves the signal strength for three or more of the wireless network communication devices in the base profile. For example, if three or more of the wireless network communication devices still have signal strength of greater than or equal to 70% of the level recorded in the base profile data, then no locking occurs. Otherwise, the electronic device is locked. In other examples, the threshold for the signal strength level may be lower or higher. The number of the wireless network communication devices for which the signal strength threshold is applied may be lower or higher. For instance, in other cases, to avoid locking, the analysis may look to maintain four of the five wireless network communication devices above 70% of the levels in the base profile data. Additional or alternative threshold-based determinations may be used.

In some cases, the disclosed devices and methods may establish a hierarchy or priority of types of trigger events. For example, the trigger events may be given in ascending priority: on-demand (or request-based) trigger event, location-based trigger event (e.g. via global positioning or change in radiofrequency environment), power-loss trigger event, scheduled trigger event, and connectivity or communications-based (e.g. “offline”) trigger event. The trigger event types may be given a priority other than the priority in the example. Resolving or ending a higher priority trigger event may also resolve any or all lower priority trigger events. When a higher priority trigger event is determined, the locking behavior (e.g. the duration of the lock, the warning or message displayed, and the alarm) may be based on the higher or highest priority trigger event. For example, where a power-loss trigger has locked a device and a location-based trigger event is determined, the message/warning is displayed, and the alarm will change according to the configuration of the power-loss trigger.

The above-described devices and methods may be used or implemented to provide a software solution for instant theft deterrence for electronic products and devices. The disclosed devices and methods may provide for data analytics and alerts regarding the status of, and user interactions with, electronic products and devices. Aspects of the disclosed devices and methods may be implemented via, or otherwise involve, the firmware of the electronic device. Other aspects may be implemented via, or otherwise involve, a software application or other instructions running on the device. In some cases, a combination of firmware and application software may be used. For example, the software solution may be installed in the basic input/output system (BIOS) or other boot instructions (e.g., bootloader) or other firmware of a device in order to lock and unlock the device based on one or more triggers. The software solution may also be configured to provide local and remote status, alerts and other data regarding the device. Data analytics and alerts regarding the status of and user interactions with electronic products and devices may be provided.

By incorporating aspects of the software solution in the firmware or other persistent of the device, the software solution cannot be overcome by hard resetting the device (e.g., a hardware or factory reset). For example, during a hard reset, the core hardware components are reset to factory settings, deleting most software installed on the device. By installing the software solution in the firmware or persistent memory of the device, a hard reset of the device does not delete or otherwise remove the software solution. In some cases, a hard reset triggers a locking or benefit denial.

One or more aspects of the software solution may be installed as a software application (e.g., an app) on the device. Installation of a software application may be useful in connection with electronic devices for which the firmware is not capable of being customized. For example, a software application may be used in connection with electronic devices commercially available from Apple. In some cases, these aspects of the solution are implemented as a persistent application(s). For example, persistent applications reload or are reinstalled upon being closed or uninstalled. Additionally, in some cases, if the software application is uninstalled, the application will reinstall itself, such as using an internet, mobile or other network connection. Therefore, if a user deletes the software application, the application will be auto re-downloaded and installed on the device.

The disclosed methods and systems are well suited for implementation by, and use with, any electronic product capable of executing instructions, including any electronic devices having firmware or other persistent memory, such as laptops, computer, tablets, mobile phones, wearables, smart televisions and other computing-based consumer, commercial and/or industrial electronic products. The software solution may be implemented via any combination of firmware and software.

The disclosed devices and methods provide a software solution for immediate benefit denial of an electronic device. The benefit denial locks the device based on one or more triggers. By locking the device, the device is rendered unusable (e.g., bricked). If one or more of the triggers are no longer present, the benefit denial is removed and the device is unlocked. By using a software solution installed on the device, the security monitoring need not rely on an internet connection, key, user intervention or other connectivity to lock and unlock the device, although such elements may be optional in some cases.

While the present invention has been described with reference to specific examples, which are intended to be illustrative only and not to be limiting of the invention, it will be apparent to those of ordinary skill in the art that changes, additions and/or deletions may be made to the disclosed embodiments without departing from the spirit and scope of the invention.

The foregoing description is given for clearness of understanding only, and no unnecessary limitations should be understood therefrom, as modifications within the scope of the invention may be apparent to those having ordinary skill in the art. 

What is claimed is:
 1. An electronic device configured for retail display, the electronic device comprising: an antenna; a memory in which security monitoring instructions are stored; and a processor configured to execute the security monitoring instructions to monitor a profile of wireless network communication devices detected via the antenna; wherein the processor is further configured via the execution of the security monitoring instructions to, upon detection of a change in the profile of wireless network communication devices that exceeds a threshold, lock a user interface of the electronic device.
 2. The electronic device of claim 1, wherein: base profile data for a home base location of the electronic device is stored in the memory; and the processor is further configured via the execution of the security monitoring instructions to implement a comparison of data indicative of the profile with the base profile data to detect the change.
 3. The electronic device of claim 2, wherein the processor is further configured via the execution of the security monitoring instructions to implement a scan to capture the base profile data via the antenna upon an unlocking of the electronic device.
 4. The electronic device of claim 1, wherein the processor is further configured via the execution of the security monitoring instructions to periodically capture current profile data for the profile of wireless network communication devices detected via the antenna.
 5. The electronic device of claim 1, wherein the profile comprises data indicative of media access control (MAC) addresses of the wireless network communication devices detected via the antenna.
 6. The electronic device of claim 1, wherein the wireless network communication devices comprise a security-dedicated wireless network communication device.
 7. The electronic device of claim 1, wherein the wireless network communication devices comprise a network device not connected to an external network.
 8. The electronic device of claim 8, wherein the wireless network communication device not connected to an external network is battery powered.
 9. The electronic device of claim 1, wherein the wireless network communication devices comprise a wireless router.
 10. The electronic device of claim 1, wherein the wireless network communication devices comprise a wireless access point.
 11. The electronic device of claim 1, wherein: exit profile data is stored in the memory; the exit profile data is indicative of a wireless network communication device disposed at a location associated with an exit of a retail environment; and the processor is further configured via the execution of the security monitoring instructions to compare the profile with the exit profile data and, upon detection of a match between the profile and the exit profile data, lock the user interface of the electronic device.
 12. A method of monitoring an electronic device on retail display, the method comprising: monitoring, by a processor, a profile of wireless network communication devices detected via an antenna of the electronic device; and upon detecting a change in the profile of wireless network communication devices that exceeds a threshold, locking, by the processor, a user interface of the electronic device.
 13. The method of claim 12, wherein monitoring the profile of wireless network communication devices comprises: obtaining, by the processor, base profile data for a home base location of the electronic device; and implementing, by the processor, a comparison of data indicative of the profile with the base profile data to detect the change.
 14. The method of claim 13, further comprising implementing a scan to capture the base profile data via the antenna upon an unlocking of the electronic device.
 15. The method of claim 12, wherein the wireless network communication devices comprise a security-dedicated wireless network communication device.
 16. The method of claim 12, wherein the wireless network communication devices comprise a network device not connected to an external network.
 17. The method of claim 12, wherein monitoring the profile of wireless network communication devices comprises capturing current profile data periodically for the profile of wireless network communication devices detected via the antenna.
 18. The method of claim 12, wherein monitoring the profile of wireless network communication devices comprises: comparing the profile with exit profile data indicative of a wireless network communication device disposed at a location associated with an exit of a retail environment; and upon detection of a match between the profile and the exit profile data, lock the user interface of the electronic device.
 19. A system for retail security monitoring, the system comprising: an electronic device on retail display; and a plurality of wireless network communication devices, each wireless network communication device of the plurality of wireless network communication devices broadcasting a respective wireless network communication signal; wherein the electronic device comprises: an antenna; a memory in which security monitoring instructions are stored; and a processor configured to execute the security monitoring instructions to monitor a profile of the plurality of wireless network communication devices detected via the antenna; wherein the processor is further configured via the execution of the security monitoring instructions to, upon detection of a change in the profile of the plurality of wireless network communication devices that exceeds a threshold, lock a user interface of the electronic device.
 20. The system of claim 19, wherein the profile comprises data indicative of media access control (MAC) addresses of the plurality of wireless network communication devices detected via the antenna.
 21. The system of claim 19, wherein the plurality of wireless network communication devices comprise a network device not connected to an external network.
 22. The system of claim 19, wherein the wireless network communication devices comprise a security-dedicated wireless network communication device.
 23. The system of claim 22, wherein the security-dedicated wireless network communication device is battery powered. 